Tabletop Exercise Outcomes and Deliverables In short, just about any cyber risks can be a part of the exercise. Various utility systems can be impacted in the simulation, including business networks, payment processing, EDI/supply chain, metering/AMI/smart grid, ICS/SCADA or other mission critical systems.Combination and cascading failures, disaster recovery and business continuity can also be modeled. Target scenarios can be created to test any division of the organization, wide scale attacks or deeply nuanced compromises of specific lines of business. The gap analysis compares your performance during the game to the process and procedure requirements described and notes any differences, weaknesses or suggestions for improvement. The second team member is an “observer” and they are skilled risk management team members who pre-review your incident response policies, procedures and documentation so that they can then prepare a gap analysis after the simulation. The first acts as the simulation moderator and “game master”, presenting the scenarios and tracking the various open threads as the simulation progresses. Our tabletop exercise process is performed by two MSI team members. During the tabletop exercise, we also leverage a custom written gaming management system to handle all event details, track game time and handle the randomization nuances. Our scenarios are developed into simulation modules, pre-approved by the client, and also include a variety of randomized events and nuances to more precisely simulate real life. We have a proprietary methodology for building out the role playing scenarios and using real-world threat intelligence and results from the client’s vulnerability management tools in the simulation. Tabletop Exercises from MSIĪt MicroSolved, we have been running cyber security tabletop exercises for our clients for more than a decade. As a result, each public utility should strongly consider implementing periodic tabletop exercises as a part of their cyber security and risk management programs. Secondly, the report discusses how useful tabletop exercises are for practicing responses to cybersecurity threats and re-enforcing the lessons learned feedback loop to improve capabilities. The first is that most successful programs are based on NIST 800-61, which is a fantastic framework for incident response plans. Though the specific tactics suggested in the report’s findings have come under fire and criticism, a few items emerged that were of broad agreement.
The report included reviews of eight utility companies’ incident response plans for critical infrastructure environments, and the programs reviewed varied in their size, complexity and maturity, though all were public utilities. The report was based on a review and analysis of the incident response and recovery capabilities of a set of their member’s cyber security units, and is a great example of some of the information sharing that is increasing in the industry.
With Linux and ZFS, QuTS hero supports advanced data reduction technologies for further driving down costs and increasing reliablility of SSD (all-flash) storage.Recently, a group of federal partners, comprised of the Federal Energy Regulatory Commission (FERC), North American Reliability Corporation (NERC) and it’s regional entities released their Cyber Planning for Response and Recovery Study (CYPRES). QuTS hero is the operating system for high-end and enterprise QNAP NAS models. WIth Linux and ext4, QTS enables reliable storage for everyone with versatile value-added features and apps, such as snapshots, Plex media servers, and easy access of your personal cloud. QTS is the operating system for entry- and mid-level QNAP NAS.
0 kommentar(er)
